You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
lsm vulnerability
About this tag
The lsm vulnerability tag covers content related to security flaws in the Windows Local Session Manager (LSM), a core operating system component. Recent discussions focus on CVE-2025-59257, a denial-of-service vulnerability that allows an authorized attacker to crash or deny session services over a network. This issue stems from improper validation of specified input types and carries a CVSS v3.1 base score of 6.5 (Medium). The tag includes patch and mitigation guidance for this specific vulnerability, as well as broader discussions of LSM security. Topics such as enterprise IT, security updates, and troubleshooting are relevant when they appear in the context of LSM vulnerabilities.
Microsoft has assigned CVE‑2025‑59257 to a denial‑of‑service vulnerability in the Windows Local Session Manager (LSM) that, according to vendor metadata, allows an authorized attacker to crash or otherwise deny session services over a network; the issue is described as “improper validation of...